Lucent Sky AVM version 2006 releases

Lucent Sky AVM version 2006 MR

New features in 2006 MR

Build

  • Automatic build tool detection for .NET Core and Maven projects
  • Better support for .NET Core 3.1
  • Improvements on direct binary analysis

    • A directory containing .class files can be specified as the binary analysis target
    • Binary analysis target is now specified as analysis target instead of an scan argument

Analysis

Binary analysis

  • Binary analysis engine accuracy, stability improvements, and bug fixes
  • Additional analysis rules for .NET and JDK applications
  • Better support for .NET Core applications

Source code analysis

  • Support for Android apps developed with Kotlin
  • Better support for client-side JavaScript
  • Source code analysis engine accuracy improvements and bug fixes

Weakness policies

  • Support for CVSS 3 and priority ratings

Interface

  • Web UI performance improvements and bug fixes
  • CLI improvements and bug fixes

    Several methods arguments are not backward compatible with previous versions of CLI. For a list of these changes, view the following article in the Lucent Sky Knowledge Base: Get started with Lucent Sky AVM CLI: Migrating CLI scripts to v2006

  • 7-Zip files are accepted as source code archive

Administration

  • Support for on-premise cluster

    To learn more about creating a cluster on-premise, or migrating on-premise instances to a cluster, view the following article in the Lucent Sky AVM Knowledge Base: Administration guide to CLEAR Engine and Web UI

  • CLEAR Engine, Web UI, and CLI now require .NET Framework 4.8

Issues fixed in 2006 MR

  • We fixed an issue where Ant build fails after scanning Java applications with certain dependencies.
  • We fixed an issue where MSBuild v12 cannot be specified in scan arguments.
  • We fixed an issue where some scan log entries of C/C++ applications are missing.
  • We fixed an issue where results with the ‘WebService’ vector cannot be suppressed.
  • We fixed an issue where guest users are unable to sign in on the Web UI.
  • We fixed an issue where the name of arguments of the CLI is case sensitive.
  • We fixed an issue where licenses might expire up to 12 hours earlier than the expiration date.
  • We fixed an issue where the Encoding setting is not preserved during an update.
  • We fixed an issue where some log entries may not appear in scan logs when multiple scans are running concurrently.
  • We fixed an issue where long path support is inconsistent on Windows Server 2019.